[c-nsp] Bridge Root Priority
lee.e.rian at census.gov
lee.e.rian at census.gov
Wed Mar 16 08:11:03 EST 2005
"Vandy Hamidi" <vandy.hamidi at markettools.com> wrote on 03/15/2005 09:31:43
PM:
> I'm looking for best practices for setting Root Priority on my core
> switch (6500 catos). I only have one switch in the core, but this
> question applies if I had two as well.
>
> I typically run the "set spantree root" which lowers the root priority
> to 8192.
>
> My engineer is asking me why we wouldn't set it down to "1" so that it
> couldn't be overthrown with a priority less than 8192.
>
> What are best practices or opinions on this matter?
As long as you're consistent I don't think it matters what values are used.
Other things I'd suggest doing are
- if you're using HSRP, make sure the root of the spanning tree is the
switch that has the connection to the HSRP primary router
- turning off unused ports
set port disable <mod/port>
- enable portfast, disable trunking on ports that do not connect to a
switch
set port host <mod/port>
- turn off user ports when they plug in their own switch
set spantree portfast bpdu-guard enable
HTH,
Lee
More information about the cisco-nsp
mailing list